•Handled a $7M+ capital project focused on security risk management and compliance Auditing, with direct alignment to governance and regulatory standards. (TSR 122 & TSR 11)•Facilitate communication and team coordination across key units like Asset Servicing, Wealth Management, Shared Services and Information Security, achieving unified security objectives.•Support and oversee a team of 20+ professionals in line with project management goals, ensuring effective execution of security controls and alignment with organizational goals. •Collaborate with key stakeholders to address control gaps and ensure continuous security improvement.•Enforce compliance with enterprise policies for password management, vaulting, and governance controls, integrated into the overarching IT audit framework.•Develop and execute comprehensive audit plans, including automation initiatives (TSR 11), to enhance IT controls and strengthen risk management practices..•Provide CIO-level reports with key metrics and oversee audit preparedness through control validation. KPIs for reporting purpose.•Collaborate with Risk and Control Officers to generate Issue and Problem Tracking (IPTs) for the risk exception and risk acceptance processes. Looking after the overall risk management and audit posture from a project perspective.•Currently developing and refining the validation package to ensure thorough audit compliance.•Guide and coordinate team contributions and communications to ensure comprehensive coverage of security and compliance requirements, fostering a cohesive and thorough approach to risk management and regulatory alignment.•Gather and analyze security and compliance requirements from stakeholders, aligning them with project objectives to ensure robust risk management and regulatory adherence.

•Led the successful delivery of complex cyber security and transformation projects. (PAM Quick Win & IDM)•Proficiency in conducting thorough IT security audits and risk assessments, representing the organization's security interests to external stakeholders. (Multiple TLA’s)•Conducted risk assessments and implemented security controls to mitigate risks.•Contributed to an eight-member team, actively defining cyber security policies and leading the creation of end-user awareness training, fostering a culture of security throughout the organization. Supported and coordinated Information Security Governance to improve process efficiencies.•Collaborated with key stakeholders in the business, including Technology, Data Protection, and Legal departments.•My hands-on experience with ISO 27001, NIST, CIS and other regulatory standards has empowered me to implement robust security measures and maintain compliance throughout my professional journey.•Led incident response efforts, coordinating with technical teams to contain and mitigate security incidents.•Identified and assessed risks impacting project success, proactively communicating with stakeholders and implementing mitigation strategies to address them.•Oversaw the Privilege Access Management - Certification Project.•Developed and enhanced security policies, procedures, and guidelines to ensure compliance with industry standards.•Performed several internal cyber security audits of the company's IT infrastructure. •Prepared detailed reports on security incidents stating recommendations for management.•Reporting to senior management and project metrics presentation.

•Leading security certification project to achieve/maintain required compliance for the organization. Verification of company policies, procedures, and controls in accordance with ISO 27001 and PCI standards. Collecting, reviewing and organizing PCI DSS, NIST & ISO documentation and supporting evidence required for certification and/or attestation.•Monitored and analyzed security logs and alerts, investigating potential security incidents.•Assisted in incident response activities, working with teams to contain and mitigate security breaches.•Conducted security awareness training sessions to educate employees on information security best practices.•Collaborated with IT teams to assess and address security risks in new system deployments.

Senior Developer and Tech lead of a Support & Development project of leading Banking accountExpertise in SDLC cycle, Agile testing. Delivered multiple projects in financial services domain.Proj 1: FLMERCH is a case management process to design and implement new Settlement Processing streams along with enhancement for the existing streams to make them efficient in terms of productivity and business worthy. It entails gathering raw data on merchant activity from various feeding systems, generating data elements.Proj 2: Rationalize and decommission the legacy systems in a manner that simplifies the To-Be footprint and leaves the environment with process focused store systems, fully leveraged common system functions and a simplified Corporate Back Office Accounting System with the Corporate Oracle ERP as the core.Roles & Responsibilities : Analysis, Detail Analysis, Design, Coding, Unit Test Case Preparation, Unit Test Results, Requirement Analysis, Sprint Planning, Solve Production issues/Investigation. Preparing Knowledge transition document and documents for quality purposes. Preparing Production Support Manual. Defect logging, monitoring, and creation of Test Metrics.Onsite – Offshore Co-ordination.

Claims system is an automated system which processes all the claims done on any Policies. Key roles are: Initial Analysis, Detail Analysis, Design, Coding, Unit Test Case Preparation, Unit Test Results, Interface Testing, System Testing, Integration Testing, Resolve issues/Investigation.